Categories: Crack

Mal/Generic-S + Troj/Patched-BS malicious file

The Mal/Generic-S + Troj/Patched-BS is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Mal/Generic-S + Troj/Patched-BS virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Performs HTTP requests potentially not found in PCAP.
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Behavioural detection: Injection (inter-process)
  • Attempts to modify proxy settings
  • Anomalous binary characteristics

How to determine Mal/Generic-S + Troj/Patched-BS?



File Info:

name: DC9F66B9AF9E516EF578.mlwpath: /opt/CAPEv2/storage/binaries/8299089416d2a4e41a5bf2042b2edb091081d43adf22d4854953f3296c047186crc32: ED020790md5: dc9f66b9af9e516ef578f8b55a7b9c7csha1: 320cca3979894392ad3e689765acbf4b519153adsha256: 8299089416d2a4e41a5bf2042b2edb091081d43adf22d4854953f3296c047186sha512: 1ac754b396b0a7a0acacf2c13a5ec619493481ea958450b19bac1b64ef1f17d72fbda22bdde97963755594877516950f6b2335943801fd7dbd699d3548fa8839ssdeep: 12288:xbSPK1Vfv7PCo2HS+dRIo6kWPLF07GBGrKtn9LcQB:oPkjPCosldRIo6jF0OGrKtn9ntype: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T12FE4126C0FD45F23D8A94A3893A6EF885BD628227B348BD3D12F115B19772E3DD57202sha3_384: 03262cc84d532acfead4294732760ed15c586632f0589f206d8d40c25102791a6b7bae848b97433a3ed22a14879ecdb7ep_bytes: e85b040000e935fdffff558bec81ec28timestamp: 2008-06-12 09:37:53

Version Info:

Comments: CompanyName: Adobe Systems IncorporatedFileDescription: Adobe Acrobat SpeedLauncherFileVersion: 9.0.0.2008061200LegalCopyright: Copyright 1984-2008 Adobe Systems Incorporated and its licensors. All rights reserved.ProductName: Adobe AcrobatProductVersion: 9.0.0.2008061200OriginalFilename: AcroSpeedLaunch.exeTranslation: 0x0409 0x04e4

Mal/Generic-S + Troj/Patched-BS also known as:

Bkav W32.AIDetect.malware1
tehtris Generic.Malware
MicroWorld-eScan Gen:Trojan.ExplorerHijack.O81@ampElRdi
FireEye Generic.mg.dc9f66b9af9e516e
ALYac Gen:Trojan.ExplorerHijack.O81@ampElRdi
Cylance Unsafe
Zillya Trojan.Ren.Win32.1399
Sangfor Trojan.Win32.Save.a
K7AntiVirus Trojan ( 0056d5f51 )
BitDefender Gen:Trojan.ExplorerHijack.O81@ampElRdi
K7GW Trojan ( 0056d5f51 )
Cybereason malicious.9af9e5
Arcabit Trojan.ExplorerHijack.EA127C
Cyren W32/S-cd850ca2!Eldorado
Symantec ML.Attribute.HighConfidence
Elastic malicious (high confidence)
ESET-NOD32 Win32/Agent.NFN
Cynet Malicious (score: 100)
APEX Malicious
ClamAV Win.Packed.Explorerhijack-7132593-0
Kaspersky HEUR:Exploit.Win32.Shellcode.gen
Rising Trojan.Patched!1.B352 (CLASSIC)
Ad-Aware Gen:Trojan.ExplorerHijack.O81@ampElRdi
Sophos Mal/Generic-S + Troj/Patched-BS
Comodo Heur.Corrupt.PE@1z141z3
DrWeb Win32.HLLP.Siggen.54
VIPRE Gen:Trojan.ExplorerHijack.O81@ampElRdi
TrendMicro TROJ_GEN.R03BC0PKA22
McAfee-GW-Edition BehavesLike.Win32.Generic.jc
Trapmine malicious.high.ml.score
Emsisoft Gen:Trojan.ExplorerHijack.O81@ampElRdi (B)
SentinelOne Static AI – Malicious PE
Avira TR/Patched.Ren.Gen
MAX malware (ai score=82)
Antiy-AVL Trojan/Generic.ASBOL.C5A5
Microsoft Trojan:Win32/Wacatac.B!ml
GData Gen:Trojan.ExplorerHijack.O81@ampElRdi
Google Detected
Acronis suspicious
McAfee Trojan-FPZU!DC9F66B9AF9E
VBA32 Trojan.Tnega
Malwarebytes Malware.AI.404806960
Panda Trj/Genetic.gen
TrendMicro-HouseCall TROJ_GEN.R03BC0PKA22
Tencent Trojan.Win32.Diple.zb
Ikarus Trojan.Win32.Patched
MaxSecure Trojan.Malware.121218.susgen
Fortinet W32/Patched.IW!tr
BitDefenderTheta Gen:NN.ZexaF.34784.O81@ampElRdi

How to remove Mal/Generic-S + Troj/Patched-BS?

  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.
Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment
Share
Published by
Paul Valéry
Tags: AcroSpeedLaunch.exeMal/Generic-S + Troj/Patched-BS
1 year ago

Recent Posts

Malware.AI.4222225806 malicious file

The Malware.AI.4222225806 is considered dangerous by lots of security experts. When this infection is active,…

1 hour ago

Malware.AI.1862100968 removal guide

The Malware.AI.1862100968 is considered dangerous by lots of security experts. When this infection is active,…

1 hour ago

Win32:VB-OLS [Trj] removal

The Win32:VB-OLS [Trj] is considered dangerous by lots of security experts. When this infection is…

2 hours ago

How to remove “Trojan:Win32/Smokeloader.CCDO!MTB”?

The Trojan:Win32/Smokeloader.CCDO!MTB is considered dangerous by lots of security experts. When this infection is active,…

2 hours ago

Should I remove “TrojanDownloader:MSIL/RedLineStealer.KL!MTB”?

The TrojanDownloader:MSIL/RedLineStealer.KL!MTB is considered dangerous by lots of security experts. When this infection is active,…

2 hours ago

How to remove “Malware.AI.4139232050”?

The Malware.AI.4139232050 is considered dangerous by lots of security experts. When this infection is active,…

3 hours ago